1. Manuals
  2. Brands
  3. Red Hat Manuals
  4. Software
  5. NETWORK SATELLITE 5.1.0 - CHANNEL MANAGEMENT
  6. Configuration manual

Deploying The Ca Ssl Public Certificate To Clients - Red Hat NETWORK SATELLITE 5.1.0 - CLIENT Configuration Manual

Client configuration
Hide thumbs Also See for NETWORK SATELLITE 5.1.0 - CLIENT:
Table of Contents

Advertisement

Chapter 3. SSL Infrastructure
Replace the example values with those appropriate for your organization. This will result in the
following relevant files in a machine-specific subdirectory of the build directory:
— the Web server's SSL private server key
server.key
— the Web server's SSL certificate request
server.csr
— the web server's SSL public certificate
server.crt
rhn-org-httpd-ssl-key-pair-MACHINE_NAME-VER-REL.noarch.rpm
for distribution to RHN Servers. Its associated src.rpm file is also generated. This RPM
contains the above three files. It will install them in these locations:
/etc/httpd/conf/ssl.key/server.key
/etc/httpd/conf/ssl.csr/server.csr
/etc/httpd/conf/ssl.crt/server.crt
• rhn-server-openssl.cnf — the Web server's SSL configuration file
— always lists the latest versions of the relevant files.
latest.txt
Once finished, you're ready to distribute and install the RPM on its respective RHN Server. Note
that the
service must be restarted after installation:
httpd
/sbin/service httpd restart

3. Deploying the CA SSL Public Certificate to Clients

Both the RHN Proxy Server and RHN Satellite Server installation processes make client
deployment relatively easy by generating a CA SSL public certificate and RPM. These
installation processes make those publicly available by placing a copy of one or both into the
/var/www/html/pub/
This public directory can be inspected easily by simply browsing to it via any web browser:
http://proxy-or-sat.example.com/pub/.
The CA SSL public certificate in that directory can be downloaded to a client system using
or
. For example:
curl
curl -O http://proxy-or-sat.example.com/pub/RHN-ORG-TRUSTED-SSL-CERT wget
http://proxy-or-sat.example.com/pub/RHN-ORG-TRUSTED-SSL-CERT
Alternatively, if the CA SSL public certificate RPM resides in the
installed on a client system directly:
20
directory of the RHN Server.
— the RPM prepared
directory, it can be
/pub
wget

Advertisement

Table of Contents
loading

Related Manuals for Red Hat NETWORK SATELLITE 5.1.0 - CLIENT

Related Content for Red Hat NETWORK SATELLITE 5.1.0 - CLIENT

Table of Contents